HANDS ON SharePoint
HANDS ON Teams
HANDS ON Lists
HANDS ON tek
M365 Admin
Microsoft Purview compliance portal: Insider Risk Management-Insider risk context in Microsoft Defender user entity page
With this update, any SOC analyst with the required customer-determined permissions can access an insider risk summary of user activities that may lead to potential data security incidents, as a part of the user entity investigation experience in Microsoft Defender. This feature can help SOC analysts gain insider risk context for a specific user and make more informed decisions on responses to potential incidents.
Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, data leakage, and security violations. Insider Risk Management enables customers to create policies based on their own internal policies, governance, and organizational requirements.
Built with privacy by design, users are pseudonymized by default, and role-based access controls and audit logs are in place to help ensure user-level privacy.
| Product | |
|---|---|
| Release phase | Preview |
| Release date | March CY2024 Preview date: December CY2023 |
| Platform | Web |
| Cloud Instance | GCC, Worldwide (Standard Multi-Tenant), GCC High, DoD |
| Created | 2023-12-21 |
| Roadmap ID | 370560 |
| Roadmap Link | https://www.microsoft.com/microsoft-365/roadmap?featureid=370560 |
No comments yet